$ rpki-client -vvf rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa File: 3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa (raw, json) Hash identifier: TsUxiCDWzqgpZio3TVcu16d1DBMsbA8rqIqBEbmSxu4= Subject key identifier: A8:79:97:AD:E3:64:FE:F8:59:64:2A:BC:B0:60:58:50:7B:CF:9B:5A Certificate issuer: /CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Certificate serial: 64016546495953801444B9C4A32A4F471D227FB7 Authority key identifier: BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D Authority info access: rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject info access: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa Signing time: Wed 09 Apr 2025 00:00:12 +0000 ROA not before: Wed 09 Apr 2025 00:00:12 +0000 ROA not after: Wed 14 May 2025 23:59:59 +0000 asID: 16509 IP address blocks: 216.221.168.0/21 maxlen: 24 Validation: OK Signature path: rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/1059b52d-846a-4cbe-a7db-796f1dd8b929.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/2a246947-2d62-4a6c-ba05-87187f0099b2.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2.cer rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.crl rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/5e4a23ea-e80a-403e-b08c-2171da2157d3.mft rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3.cer rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.crl rsync://rpki.arin.net/repository/arin-rpki-ta/arin-rpki-ta.mft rsync://rpki.arin.net/repository/arin-rpki-ta.cer Signature path expires: Sun 27 Apr 2025 15:00:00 +0000 Certificate: Data: Version: 3 (0x2) Serial Number: 64:01:65:46:49:59:53:80:14:44:b9:c4:a3:2a:4f:47:1d:22:7f:b7 Signature Algorithm: sha256WithRSAEncryption Issuer: CN=d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5 Validity Not Before: Apr 9 00:00:12 2025 GMT Not After : May 14 23:59:59 2025 GMT Subject: serialNumber=6a1cad9ac42ecd8855e1c237f7339f78f3fb603b27e811a42f6803eb61946d32, CN=42519eb9-9579-4979-bdaf-164abd0e290e Subject Public Key Info: Public Key Algorithm: rsaEncryption RSA Public-Key: (2048 bit) Modulus: 00:91:d6:3b:8c:22:49:90:fd:da:3b:94:8d:ab:94: 14:84:f7:b6:29:e5:e5:bb:43:c2:88:c6:ed:65:a3: 6c:07:da:b2:e1:5b:87:c2:2a:54:fa:9d:b7:9a:a5: 43:48:7c:2f:fc:e8:d8:c8:ea:ff:e0:c4:70:d1:e8: 8e:1e:b9:ca:3e:d6:6d:19:4b:30:c0:fd:b1:d6:5f: 08:76:e8:6a:8f:60:2a:62:0c:bd:03:17:85:20:c4: aa:34:cc:c0:80:1a:c5:86:42:f9:27:24:9a:77:d2: c3:1b:53:5b:c8:79:00:f5:d8:46:af:25:b5:07:89: cb:b8:b2:f3:34:0a:54:9e:a5:f7:0c:13:47:81:60: 35:ca:65:34:a9:c9:c7:41:89:91:c0:f7:42:c4:b2: 96:92:19:2f:b7:14:15:b8:10:6f:e2:d1:4a:a5:69: 7b:46:55:be:2c:e9:f7:52:1b:76:a0:ea:ae:54:b3: 78:7e:e6:14:25:31:48:93:e4:43:0a:e1:92:0d:06: 15:e6:1d:58:22:1f:7c:bb:ac:1c:70:14:00:28:f7: ef:8b:ee:51:b2:3c:92:41:16:0f:99:3d:95:dc:bb: 4f:59:b3:d7:9c:f8:65:bc:dc:21:99:4e:dc:ec:0e: ea:fc:a4:6d:53:92:8c:2d:f0:42:88:f4:bf:b9:9c: c4:27 Exponent: 65537 (0x10001) X509v3 extensions: X509v3 Subject Key Identifier: A8:79:97:AD:E3:64:FE:F8:59:64:2A:BC:B0:60:58:50:7B:CF:9B:5A X509v3 Authority Key Identifier: keyid:BC:93:AE:71:0F:AF:14:22:36:08:2F:8E:D9:6B:56:CB:A9:D5:02:8D X509v3 Key Usage: critical Digital Signature Authority Information Access: CA Issuers - URI:rsync://rpki.arin.net/repository/arin-rpki-ta/5e4a23ea-e80a-403e-b08c-2171da2157d3/2a246947-2d62-4a6c-ba05-87187f0099b2/1059b52d-846a-4cbe-a7db-796f1dd8b929/d58fa2ccb66b1b0eae2d6e3f5c46e9c2f2d1d309dfbd9d2af5.cer Subject Information Access: Signed Object - URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/3e0dace3-0e2a-4252-8c92-4c7eec4c3588.roa X509v3 CRL Distribution Points: Full Name: URI:rsync://rpki-rsync.us-east-2.amazonaws.com/volume/b8a1dd25-c313-4f25-ac21-bf55514d9c7d/axsOri1uP1xG6cLy0dMJ372dKvU.crl X509v3 Certificate Policies: critical Policy: ipAddr-asNumber sbgp-ipAddrBlock: critical IPv4: 216.221.168.0/21 Signature Algorithm: sha256WithRSAEncryption 76:75:6c:3c:4a:6d:35:ea:f1:ed:9a:9d:ec:e5:1d:af:9f:29: 3e:67:5c:cb:b0:b8:47:cc:e8:a2:46:7c:59:5d:c3:e2:ac:2e: ba:e8:4e:eb:5a:af:db:dc:1b:75:8d:e7:35:0d:ad:ab:6f:a6: b4:1f:32:f1:80:fa:55:e9:4b:b4:48:e8:4d:fa:ae:f0:9b:19: b4:d5:0b:fc:4b:4b:23:e2:32:71:0a:0e:07:04:7b:04:b7:73: 37:64:20:4a:f7:70:5d:d6:1c:62:e2:d0:b2:3f:44:1e:e0:61: 71:37:be:3f:08:b8:32:51:37:51:a6:9e:e1:2b:7e:fc:2d:45: 58:70:b7:d3:d8:4f:3f:2d:34:77:47:82:7f:e5:3d:be:ee:35: 0a:f8:4e:05:e5:57:55:4e:6c:2e:a8:1d:65:14:74:7c:d6:d8: 3d:46:b0:7f:8d:75:96:32:3e:18:73:d6:7e:c3:be:2c:af:72: 7b:fc:97:e4:ac:f4:57:d6:dd:6e:b9:43:7e:5d:93:88:ab:90: 21:52:8c:41:f6:2f:dd:ad:7e:11:58:be:a0:13:fc:cc:17:0b: e8:66:21:ac:97:27:a5:65:1a:ad:8e:f4:c9:71:a5:82:b0:33: 20:5e:8e:ad:6e:fe:b6:42:e8:f6:e9:ae:10:76:65:f8:77:20: 99:0b:25:74 -----BEGIN CERTIFICATE----- MIIF+DCCBOCgAwIBAgIUZAFlRklZU4AURLnEoypPRx0if7cwDQYJKoZIhvcNAQEL BQAwPTE7MDkGA1UEAxMyZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2ZTNmNWM0NmU5YzJm MmQxZDMwOWRmYmQ5ZDJhZjUwHhcNMjUwNDA5MDAwMDEyWhcNMjUwNTE0MjM1OTU5 WjB6MUkwRwYDVQQFE0A2YTFjYWQ5YWM0MmVjZDg4NTVlMWMyMzdmNzMzOWY3OGYz ZmI2MDNiMjdlODExYTQyZjY4MDNlYjYxOTQ2ZDMyMS0wKwYDVQQDEyQ0MjUxOWVi OS05NTc5LTQ5NzktYmRhZi0xNjRhYmQwZTI5MGUwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQCR1juMIkmQ/do7lI2rlBSE97Yp5eW7Q8KIxu1lo2wH2rLh W4fCKlT6nbeapUNIfC/86NjI6v/gxHDR6I4euco+1m0ZSzDA/bHWXwh26GqPYCpi DL0DF4UgxKo0zMCAGsWGQvknJJp30sMbU1vIeQD12EavJbUHicu4svM0ClSepfcM E0eBYDXKZTSpycdBiZHA90LEspaSGS+3FBW4EG/i0UqlaXtGVb4s6fdSG3ag6q5U s3h+5hQlMUiT5EMK4ZINBhXmHVgiH3y7rBxwFAAo9++L7lGyPJJBFg+ZPZXcu09Z s9ec+GW83CGZTtzsDur8pG1Tkowt8EKI9L+5nMQnAgMBAAGjggKxMIICrTAdBgNV HQ4EFgQUqHmXreNk/vhZZCq8sGBYUHvPm1owHwYDVR0jBBgwFoAUvJOucQ+vFCI2 CC+O2WtWy6nVAo0wDgYDVR0PAQH/BAQDAgeAMIHzBggrBgEFBQcBAQSB5jCB4zCB 4AYIKwYBBQUHMAKGgdNyc3luYzovL3Jwa2kuYXJpbi5uZXQvcmVwb3NpdG9yeS9h cmluLXJwa2ktdGEvNWU0YTIzZWEtZTgwYS00MDNlLWIwOGMtMjE3MWRhMjE1N2Qz LzJhMjQ2OTQ3LTJkNjItNGE2Yy1iYTA1LTg3MTg3ZjAwOTliMi8xMDU5YjUyZC04 NDZhLTRjYmUtYTdkYi03OTZmMWRkOGI5MjkvZDU4ZmEyY2NiNjZiMWIwZWFlMmQ2 ZTNmNWM0NmU5YzJmMmQxZDMwOWRmYmQ5ZDJhZjUuY2VyMIGeBggrBgEFBQcBCwSB kTCBjjCBiwYIKwYBBQUHMAuGf3JzeW5jOi8vcnBraS1yc3luYy51cy1lYXN0LTIu YW1hem9uYXdzLmNvbS92b2x1bWUvYjhhMWRkMjUtYzMxMy00ZjI1LWFjMjEtYmY1 NTUxNGQ5YzdkLzNlMGRhY2UzLTBlMmEtNDI1Mi04YzkyLTRjN2VlYzRjMzU4OC5y b2EwgYgGA1UdHwSBgDB+MHygeqB4hnZyc3luYzovL3Jwa2ktcnN5bmMudXMtZWFz dC0yLmFtYXpvbmF3cy5jb20vdm9sdW1lL2I4YTFkZDI1LWMzMTMtNGYyNS1hYzIx LWJmNTU1MTRkOWM3ZC9heHNPcmkxdVAxeEc2Y0x5MGRNSjM3MmRLdlUuY3JsMBgG A1UdIAEB/wQOMAwwCgYIKwYBBQUHDgIwHwYIKwYBBQUHAQcBAf8EEDAOMAwEAgAB MAYDBAPY3agwDQYJKoZIhvcNAQELBQADggEBAHZ1bDxKbTXq8e2anezlHa+fKT5n XMuwuEfM6KJGfFldw+KsLrroTutar9vcG3WN5zUNratvprQfMvGA+lXpS7RI6E36 rvCbGbTVC/xLSyPiMnEKDgcEewS3czdkIEr3cF3WHGLi0LI/RB7gYXE3vj8IuDJR N1GmnuErfvwtRVhwt9PYTz8tNHdHgn/lPb7uNQr4TgXlV1VObC6oHWUUdHzW2D1G sH+NdZYyPhhz1n7Dviyvcnv8l+Ss9FfW3W65Q35dk4irkCFSjEH2L92tfhFYvqAT /MwXC+hmIayXJ6VlGq2O9MlxpYKwMyBejq1u/rZC6PbprhB2Zfh3IJkLJXQ= -----END CERTIFICATE-----Generated at Sat Apr 26 14:57:26 2025 by rpki-client